104.21.87.84200 OK 4.9 kB URL User Request GET HTTP/2 IP 104.21.87.84:443
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type HTML document, ASCII text
Hash 6392703f8737c09e140fb4f1897b1fb6
757976a82c4211365f754939b29f822cb0ba5bdf
21ac3b6af880f55ac42e2c79e71dbe19e852b092bc8d16b6b1637b7586b410c3
GET /signin.php HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: loclang=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tJaF9vL3vAE0DlMGLz3IAVBiY%2BBGSeOMUkLjScT3F4HjF610zNmSnJL4sG1CR8PvqA2c0CxzTpMQuji2snbZZlaO%2B8sgsohIOLVNFRs4gCc4RgM8qYZA00siCD2XMdxb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83a7e3b5a56b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
m.payquiz.xyz/img/head.png
104.21.87.84200 OK 3.3 kB URL GET HTTP/3 m.payquiz.xyz/img/head.png
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 147 x 147, 8-bit colormap, non-interlaced
Hash 9c7de4763367fed9c9b5ffe680622c2a
d433a88bcb000f5e98385c06b4c0bc6da22190be
cd483b84dad3747061d18c6173a36ef438200d66d0cac503404173eec4913027
GET /img/head.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: image/png
content-length: 3330
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-d02"
expires: Sat, 11 May 2024 18:19:15 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1292314
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QdhBuxU%2BQfSB8EDZkPTfOLn1KObbLk%2Bg5ppi%2FhcEmp72Hblg0Ps4XQYe7iZqsNX9VJmvZy5yNkpb3d3H6tIoHivcEJ5djh4YmbR8vFuqiWmdgR4%2F5yYfRTClAZV22I4f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a81bbb956cc-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_Support.png
104.21.87.84200 OK 1.2 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Support.png
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 92c8aacf76b31d3a08597a3849f0545e
2c74f1aed7b114f8d31565f530467ff373284380
e6b897df6a87f20bec1bb5f4689d122f67095992aae84b79e814a88a1f00fd81
GET /img/Answer_pc_Support.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: image/png
content-length: 1194
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-4aa"
expires: Sat, 11 May 2024 18:19:16 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1292313
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GFFDvjfdn%2FoMvnsyMivSX0q4QqlwNc7vZ2BblTEHvMPW3c%2FNX7xcZsB9cJkitDQFbfQTyrEdrr8kzkyEODI8X9BUJZZRASOwlk4m9vRJIwmC7uLIKHuRHtjhUqcig8US"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a81bbc256cc-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/question.php?pkid=40xp4cybbbs0./signin.php./signin.php./signin.php./signin.php./signin.php
104.21.87.84302 Found 508 B URL User Request GET HTTP/2 m.payquiz.xyz/question.php?pkid=40xp4cybbbs0./signin.php./signin.php./signin.php./signin.php./signin.php
IP 104.21.87.84:443
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 60be355f63ecbb781dda38ade7cc47b5
ea3627b8f993fb00b1da9b31b795431701c8fcbb
2589ee98f66272d8af6bdf3639505cc42ff3d8aee18973129f3341ac734cfa17
GET /question.php?pkid=40xp4cybbbs0./signin.php./signin.php./signin.php./signin.php./signin.php HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: text/html;charset=utf-8
location: ./signin.php
set-cookie: loclang=en; expires=Mon, 29-Apr-2024 17:17:49 GMT; Max-Age=259200; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cplS0kz9SxXNJm0fI1lTBzBIfNAAVddqjZMGzeFEVPq88A5EkarWOJGBJgyGZ%2FohVQaB%2BAz88Cf37V0tLYtsKJhxpxzQEQbaChiSdjTI5dd5EkI2hw6BH0D2jqa2boHF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83a7b6edd56b7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
m.payquiz.xyz/img/Answer_pc_User-area.png
104.21.87.84200 OK 1.1 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_User-area.png
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 169da7dd2359a7338b078288b22a087a
8eb84e4fdb93abbaf1043405c838da69efb660e4
1ad7c05edd739e9b883d4945aa902497127f690184221e45476497250d66b4bc
GET /img/Answer_pc_User-area.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: image/png
content-length: 1140
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-474"
expires: Sun, 26 May 2024 17:17:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 4
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rBRU1E5S2EG7fwfFZ%2FtuoyGJZ%2FC39v18QEh918YuLWNUGFegHJxL2zpSGYNG0mANYB74zWZr9Iz2o4aNWZIj92NF4K7L1Ka8E%2BHgsv2GkqdtANXzb3Oy8KeeT%2F0aMMe6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a81bbc156cc-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_Language.png
104.21.87.84200 OK 893 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Language.png
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 9b034b5eb84e477e4c6e868baf9a42bf
b4ad7abdebcb0f12ca3e16a2e5ad6d1749322d3b
38fd90ebc3999035170310a5c38ddcf8745dce659edfcb0fafb72d0714f68d43
GET /img/Answer_pc_Language.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: image/png
content-length: 893
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-37d"
expires: Sat, 18 May 2024 05:03:16 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 735273
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8%2FMyLmhajY2CX9IIYZn61jEMyx%2Fns21bO6P7yCH5Ey3xYLHL3TNgAn0hN3RPig6jejm1GiEh6Wk6qI1zgeo1Trlt3v0J9nvrG12gpFnq1PaKht8wO1Zj2SupQBRWkZeh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a81bbcb56cc-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_F.A.Q.png
104.21.87.84200 OK 1.2 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_F.A.Q.png
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash dcbdee5147e3caea028b18dc665c965d
82de1c17e9214503382c2aa01bed2eef72075dcb
548520c286521c9d0f7c38f16e0934211322bd8571c6764242a89662c3978d4c
GET /img/Answer_pc_F.A.Q.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: image/png
content-length: 1208
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-4b8"
expires: Sat, 11 May 2024 18:19:16 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1292312
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eNAU77vnpKYsy7jEfM6q%2F%2B1Zixnh5Qvie14VxgzNCW3CmWOrVpGQdFuy3G4hPuFdRFF9Nt1Rd4H%2FgjxilswzUB%2BXomFMbb0hGfq3xWFIc4WjNzUvRLzjtn7frq9Gx7eI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a81bbca56cc-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_Rules.png
104.21.87.84200 OK 455 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Rules.png
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 45420c3303ad8593b2ed7d2ae02530de
09392189c8e80f20950059ef721b2c799ab1d239
482355fa327e795e3114e335fa70f6c4ee352bbd66540d365c94c719cd3d7847
GET /img/Answer_pc_Rules.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: image/png
content-length: 455
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-1c7"
expires: Sun, 26 May 2024 17:17:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 4
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QZovJOfu7VEQcDZUWmJbZetVGCvGuCLvfL4aCD3t5SCTVg%2BJRPGbloKOKBeuhsJN6UVHM4Ab3qoGB5I9tWYmwVzQTCJTz77Cs17tuT7ZafR4SHcN4T09T2y4rixh9Pel"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a81bbcc56cc-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_7.png
104.21.87.84200 OK 338 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_7.png
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 35 x 35, 8-bit colormap, non-interlaced
Hash d7ad748bd3ba01d43e3c09c705f1720d
8754bee0d330d3207c4ec04bee4ec29258a203d3
9a30cd63bb9af11a2bb36d7dcb6806cfd71cc2fef7362694d82059b2e644a307
GET /img/Answer_7.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: image/png
content-length: 338
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-152"
expires: Sun, 26 May 2024 17:17:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 4
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4hHZptUwrV2v7tKxC7GMRyBY7OH0HRnwpuzbToANzSwCR86yLKdJ9cFlccdoAmmEQ4orVA%2FfEh6lvODd985XTvm13V%2FINbT5Yhl%2BxpjeW%2B0%2F6xULY2W7dWnSsVQSgZkb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a81bbce56cc-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/public/sweetalert-dev.js?v=1025
104.21.87.84200 OK 10 kB URL GET HTTP/3 m.payquiz.xyz/public/sweetalert-dev.js?v=1025
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (482), with CRLF line terminators
Hash 57904bb2d29194cdeb977098ced0997d
c05fe82fb5d018c812cb485a33529c4de85fac8a
4012721763780fea2a700978f072c577cfa5ded57dd165919cec59e1677ee89b
GET /public/sweetalert-dev.js?v=1025 HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: application/javascript
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
vary: Accept-Encoding
etag: W/"61a47582-a8d9"
expires: Sat, 27 Apr 2024 05:17:44 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 4
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QlO%2FeNiV2fM3iWvrvNl9%2B%2FQ86WU5zPP%2FXEyIBu0pp7lRvmCbF8k%2BwswHvsqL7wJ6PaTFdV2dHGcaa0VCAuzuP11yUiItvw1z91CcVIDGBNN64GrjXXfOl%2FeWju7hGzRc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83a81abb056cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/public/common.js?v=1025
104.21.87.84200 OK 11 kB URL GET HTTP/3 m.payquiz.xyz/public/common.js?v=1025
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JavaScript source, ASCII text
Hash bc5538672592ffaec79fa6d8d867ca48
d634906013cf2b33a3c0a686f7430dc274495390
5b5c5192e4cd0430695a6aa793252effbfad68ae8940a06b630ea7df9221fbdf
GET /public/common.js?v=1025 HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: application/javascript
last-modified: Wed, 20 Dec 2023 06:50:16 GMT
vary: Accept-Encoding
etag: W/"65828ea8-ffc"
expires: Sat, 27 Apr 2024 05:17:44 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 4
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mkKMyR9tAAyFtRKumqoWd4tPYNlCoaOfdBUlGuzfOjhf0i4VkISXdDuXqKTOTBBWujs3b7EcnK0CH6vAtUxQ0wz%2FH1var7hSaTTDL3HwX%2FtwHwB%2FIGMPlp%2BDX%2B1eSgaL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83a81aba456cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_15.png
104.21.87.84200 OK 1.5 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_15.png
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 482 x 270, 8-bit colormap, non-interlaced
Hash 4978bd85288fbbfed0278c0e7f625009
f37aa6532095f7d1248a186292c05062458d5c8e
8bd443af9e7ea126b3cd6839c67f16bade003a150eba9171b0bd7b114449fef8
GET /img/Answer_15.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/public/common.css?v=1025
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: image/png
content-length: 1501
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-5dd"
expires: Sun, 26 May 2024 17:17:45 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 4
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VanPp8fx%2F6Tjmdmh0hOq7d1wV%2FWV2dYTbX0mXrS1Jw0I0Eq1g8%2Bfjjh5EqC%2Fgi4RqefL46hSuItegzRsrI320tUsAvl%2BZA2P%2FBTwYe%2FmIUhgg0WSoLg1HxBq0rtF0ubb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a827cad56cc-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/public/sweetalert.css
104.21.87.84200 OK 14 kB URL GET HTTP/3 m.payquiz.xyz/public/sweetalert.css
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type ASCII text, with CRLF line terminators
Hash 9b8007e29ad2778d449264166a7892b7
47418efe84958fcf4a945cbf6c2f54d29967e79b
4513f34c44831aab38d5171e7d729e3fabeea39dfc7ffd06722b490d02f20a70
GET /public/sweetalert.css HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: text/css
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
vary: Accept-Encoding
etag: W/"61a47582-5d03"
expires: Sat, 27 Apr 2024 04:10:21 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 4047
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jQv3LQFjRH32z3P26Cn1dKU4mcHaBEQfP6XKPVHpdbYp8c0DhaaRmXfwEfZvV0RMC8Q6P%2B0VINU2wPV52it2%2BvkpefvuGWrNl0hA2Ws0LvOiQhb%2B4EUe7Vkt1y%2Fn1FqW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83a81abb456cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ulogin.ru/js/ulogin.js
95.163.118.168200 OK 19 kB IP 95.163.118.168:443
ASN #12695 LLC Digital Network
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type JavaScript source, ASCII text, with very long lines (580)
Hash c9704bed2f73ce4d9c2cbf77bfad8fe3
2fc0f98804879c7c59290e478ec2236dd33fe851
b0f570ce375d2366bbbee496891a3f0efa62593305ef5fd82b4a4e8d21b00496
GET /js/ulogin.js HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:17:51 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 14 Dec 2023 21:21:20 GMT
Set-Cookie: ulogin_token=u546338e831543e121ca513177f5ad786; expires=Tuesday, 12-Jan-2030 10:00:00 GMT; path=/
Expires: Mon, 29 Apr 2024 17:17:51 GMT
Cache-Control: max-age=259200
Content-Encoding: gzip
tj.657g.xyz/js/script.js
188.114.97.1200 OK 699 B IP 188.114.97.1:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subject657g.xyz
Fingerprint50:D6:E0:11:AD:45:D4:13:FA:D4:11:BC:81:A3:03:88:0B:91:49:F4
ValidityTue, 05 Mar 2024 08:51:58 GMT - Mon, 03 Jun 2024 08:51:57 GMT
File type JavaScript source, ASCII text, with very long lines (1346), with no line terminators
Hash abd4e2373b2e8c4dac2e80159641c5f1
e273656e58ca934d873204e68dd35670fde657ed
021f0fd27042b279a49e982215c6dc3c3ab84e95b35553a119dfdbd50af6be94
Analyzer Verdict Alert OpenPhish phishing PayPal Inc.
GET /js/script.js HTTP/1.1
Host: tj.657g.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: application/javascript
cf-bgj: minify
expires: Fri, 26 Apr 2024 18:48:21 GMT
vary: Accept-Encoding
x-cache: HIT
access-control-allow-origin: *
cache-control: max-age=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cf-cache-status: HIT
age: 37903
last-modified: Fri, 26 Apr 2024 06:46:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lixxyBkRccvFn94WAg3cVbr3j3rbK%2FjRp7W7BiY75FpS8sIgM1enNTwLeFb%2FQlIRElkimrE8WVsQhH8oS%2BaH2KE56GDBzRUoBPnDJGHZBj27nXhuyqmXaxYtEdHjog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83a828c58b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ulogin.ru/version/3.0/img/providers-32-classic.png?version=img.3.0.2
95.163.118.168200 OK 37 kB URL GET HTTP/1.1 ulogin.ru/version/3.0/img/providers-32-classic.png?version=img.3.0.2
IP 95.163.118.168:443
ASN #12695 LLC Digital Network
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type PNG image data, 32 x 816, 8-bit/color RGBA, non-interlaced
Hash deda48d7164be4bd370e4f4a842ef4c3
05779a81d5c22751d9fc3233e24dd39d863874b4
4101a0011295ffe856d6ed838c40acace8a110e03a4bd884f681de7a9354b320
GET /version/3.0/img/providers-32-classic.png?version=img.3.0.2 HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:17:51 GMT
Content-Type: image/png
Content-Length: 37284
Last-Modified: Tue, 10 Aug 2021 18:31:03 GMT
Connection: keep-alive
ETag: "6112c5e7-91a4"
Expires: Mon, 29 Apr 2024 17:17:51 GMT
Cache-Control: max-age=259200, public
Accept-Ranges: bytes
ulogin.ru/stats.html?r=2867&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default4318&xdm_p=1
95.163.118.168200 OK 1.1 kB URL GET HTTP/1.1 ulogin.ru/stats.html?r=2867&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default4318&xdm_p=1
IP 95.163.118.168:443
ASN #12695 LLC Digital Network
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type HTML document, ASCII text, with CRLF line terminators
Hash 172c9de95b5e09f3f3fb6788dc85e618
a0af500d47d229611d00a78a0bfbcdefedc6d519
0d35a0dfc59effaee55acbe08ff749792d5c5dee22ac7969a297bdbd3fc5b00b
GET /stats.html?r=2867&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default4318&xdm_p=1 HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:17:51 GMT
Content-Type: text/html
Last-Modified: Tue, 10 Aug 2021 16:01:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
ulogin.ru/js/easyXDM.min.js?version=js.2.0.0
95.163.118.168200 OK 7.0 kB URL GET HTTP/1.1 ulogin.ru/js/easyXDM.min.js?version=js.2.0.0
IP 95.163.118.168:443
ASN #12695 LLC Digital Network
Requested by https://ulogin.ru/stats.html?r=2867&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default4318&xdm_p=1
Certificate IssuerLet's Encrypt
Subjectulogin.ru
Fingerprint9B:19:52:DB:BA:EE:1E:EB:EC:62:1E:7F:67:75:1F:46:E8:A0:25:57
ValidityTue, 23 Apr 2024 22:04:41 GMT - Mon, 22 Jul 2024 22:04:40 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (19804)
Hash 0cc34325f9c69f544cb67247c57fc48e
c6b3bf80233dcb3340e217fb16849eef4bf6e238
d00c673032c1444178a7cebc6cf988440d2e1ead769aea9470806bba9beab8a8
GET /js/easyXDM.min.js?version=js.2.0.0 HTTP/1.1
Host: ulogin.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ulogin.ru/stats.html?r=2867&type=panel&xdm_e=https%3A%2F%2Fm.payquiz.xyz&xdm_c=default4318&xdm_p=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 17:17:51 GMT
Content-Type: application/x-javascript
Content-Length: 6980
Last-Modified: Wed, 08 Jun 2016 14:44:03 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "57582f33-1b44"
Content-Encoding: gzip
Expires: Mon, 29 Apr 2024 17:17:51 GMT
Cache-Control: max-age=259200, public
m.payquiz.xyz/public/common.css?v=1025
104.21.87.84200 OK 16 kB URL GET HTTP/3 m.payquiz.xyz/public/common.css?v=1025
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type troff or preprocessor input, Unicode text, UTF-8 text
Hash 5643d4a7bd96025d43a450ea9b1ed631
f907e2cea773c16b55be45e77a8932153a0d933b
f9bc6e2d009ca14a864dbcfdaa01ce3549ce408c1124a4bbecc993ca6a649cee
GET /public/common.css?v=1025 HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: text/css
last-modified: Mon, 08 Jan 2024 02:50:02 GMT
vary: Accept-Encoding
etag: W/"659b62da-612a"
expires: Sat, 27 Apr 2024 05:17:44 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 4
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bM0uAnraMUKLSHzopujO1ejGzrAkVZjSl%2B7m%2FmZDfche5kiPYZR2kmr9IuqboCODmdPNl4kxABwyffw7Wr9jsvWYRnmDKE5XgscFPtMvalsZ619DYlEObL3uGEa0S%2F1L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83a81ab9e56cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=205786112&si=60c87f46b6c9bdadb204d78d0c8c690d&v=1.3.0&lv=1&sn=18412&r=0&ww=1280&u=https%3A%2F%2Fm.payquiz.xyz%2Fsignin.php&tt=Sign%20In
183.240.98.228200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=205786112&si=60c87f46b6c9bdadb204d78d0c8c690d&v=1.3.0&lv=1&sn=18412&r=0&ww=1280&u=https%3A%2F%2Fm.payquiz.xyz%2Fsignin.php&tt=Sign%20In
IP 183.240.98.228:443
ASN #56040 China Mobile communications corporation
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=205786112&si=60c87f46b6c9bdadb204d78d0c8c690d&v=1.3.0&lv=1&sn=18412&r=0&ww=1280&u=https%3A%2F%2Fm.payquiz.xyz%2Fsignin.php&tt=Sign%20In HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Fri, 26 Apr 2024 17:17:51 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E82B688F3AC81E34; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
35.244.181.201 444 B URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP 35.244.181.201:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type XML 1.0 document, ASCII text, with very long lines (332)
Hash 3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=7gItdP9u09xETJ_iC-qa76v8V1pvcUcEnXK9u7DxqEGG6mC2w3ZHDKoFc7rQCdunKHb_ULQkV6ALKiYQhckU2q3RdFHzMXw35WKVMM6BRFuieRyvf1LbVqqMDjRGgkuw
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Fri, 26 Apr 2024 17:17:47 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 20
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
m.payquiz.xyz/img/Answer_bg.jpg
104.21.87.84200 OK 9.2 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_bg.jpg
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x1625, components 3
Hash ae6d0f3d012f7e40e2663ac3b50ace02
9bdde67f3abe5abda16b3aad0183972557556b1a
29ba93cc464765da13bb0e3c31d0b55fe63709dd0deeab4d94f225f3f5930165
GET /img/Answer_bg.jpg HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/public/common.css?v=1025
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: image/jpeg
content-length: 9223
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-2407"
expires: Fri, 24 May 2024 03:55:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220941
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lde%2BWcvmK8ueqoJomm%2F8fRi0jAc4YfPKPq2EXnvB9hrL7BBHUacoB4qENlB5gX4Nra7HeosD0fq8Zj4Fi0mo64O9TriklM9cWi%2BY%2FjOpRpQDAi7C%2BEhjd2glPm1ckMdT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a827caf56cc-OSL
alt-svc: h3=":443"; ma=86400
tj.657g.xyz/api/event
188.114.97.1202 Accepted 2 B IP 188.114.97.1:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subject657g.xyz
Fingerprint50:D6:E0:11:AD:45:D4:13:FA:D4:11:BC:81:A3:03:88:0B:91:49:F4
ValidityTue, 05 Mar 2024 08:51:58 GMT - Mon, 03 Jun 2024 08:51:57 GMT
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
Analyzer Verdict Alert OpenPhish phishing PayPal Inc.
POST /api/event HTTP/1.1
Host: tj.657g.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 79
Origin: https://m.payquiz.xyz
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 202 Accepted
date: Fri, 26 Apr 2024 17:17:50 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: F8nkKpk5lKqpTsYN3-nB
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5ldvyMj2JtyFCojOO2%2F%2BnXGoFZoz8SkzBbF8P25W15OyxVR6%2FC%2BOv7dQKbRXAcdZBwBxLZ6bcGaRk93q%2Bxj3GFt1pZ%2BUKbOqTclmRBl018F0hOF1wsmYCf2QGViOqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83a854a4e569f-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_1.png
104.21.87.84200 OK 9.7 kB URL GET HTTP/3 m.payquiz.xyz/img/Answer_1.png
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 650 x 836, 8-bit colormap, non-interlaced
Hash d4a5980610579d23018ecf9a30c73967
ff28569ee1e381682e2bc4178614951955df537e
351af559d10c31589635d1e8911b59286638badf38c141826f7af5f95a356f09
GET /img/Answer_1.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/public/common.css?v=1025
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: image/png
content-length: 9704
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-25e8"
expires: Fri, 24 May 2024 03:32:53 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 222296
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CQ1J%2F0fSlJDZ0SHRzLfxcaP7fyUYICuLAL%2BIxy6u6hhARP%2FIGu4HCnYbddHgTJYUMpMIirZXJ3GwAT%2Bi4A7VnicMvQC4L2mTEENwDGPQc7jbx27lopYmSRz1Ds7azssx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a827cb056cc-OSL
alt-svc: h3=":443"; ma=86400
hm.baidu.com/hm.js?60c87f46b6c9bdadb204d78d0c8c690d
183.240.98.228200 OK 30 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?60c87f46b6c9bdadb204d78d0c8c690d
IP 183.240.98.228:443
ASN #56040 China Mobile communications corporation
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (620)
Hash 60cc03ecac9b4f00454c750a62ad8ed7
3430fae2b01394bb24477ae40cb1eca4cba7e2ef
2a54580801b5ca96107e1a49f61f05f5e2a166a47e16b1ff73d9983a5666c07b
GET /hm.js?60c87f46b6c9bdadb204d78d0c8c690d HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11258
Content-Type: application/javascript
Date: Fri, 26 Apr 2024 17:17:51 GMT
Etag: 6abe22cae072c4203413246d291c5e9d
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=7552FA5184024D61; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
m.payquiz.xyz/public/jquery-3.6.0.min.js
104.21.87.84200 OK 90 kB URL GET HTTP/3 m.payquiz.xyz/public/jquery-3.6.0.min.js
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /public/jquery-3.6.0.min.js HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: application/javascript
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
vary: Accept-Encoding
etag: W/"61a47582-15d9d"
expires: Sat, 27 Apr 2024 04:10:21 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 4048
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4RAFuAEFQ1a%2FtHLTarfSIM7%2B2TAmPrpMfP6OsZGdrv3lv3gIhMM%2FI4lb9uu9tDNzTqV1HoiIYoEtML5bsov5Pj7065iPd4oAN0B2q6GibcHCnsyAe96gaxmSWif8fSHU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a83a81aba256cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/img/Answer_pc_Home.png
104.21.87.84200 OK 508 B URL GET HTTP/3 m.payquiz.xyz/img/Answer_pc_Home.png
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced
Hash 60be355f63ecbb781dda38ade7cc47b5
ea3627b8f993fb00b1da9b31b795431701c8fcbb
2589ee98f66272d8af6bdf3639505cc42ff3d8aee18973129f3341ac734cfa17
GET /img/Answer_pc_Home.png HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:49 GMT
content-type: image/png
content-length: 508
last-modified: Mon, 29 Nov 2021 06:38:58 GMT
etag: "61a47582-1fc"
expires: Fri, 24 May 2024 03:55:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 220942
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KhiiJZq%2BywbxAmKmrmPFlYnlCY0XkBfJaxjseW8yNtkhfhLjtc8NYcQlSj0xR46JycPG050LttrKq5RHkD0caAuLWepPymfQNnvQiLgV%2FfX%2BBwpkuQqvPgctpcd8N2c6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a81bbbf56cc-OSL
alt-svc: h3=":443"; ma=86400
m.payquiz.xyz/favicon.ico
104.21.87.84200 OK 4.3 kB URL GET HTTP/3 m.payquiz.xyz/favicon.ico
IP 104.21.87.84:443
Requested by https://m.payquiz.xyz/signin.php
Certificate IssuerGoogle Trust Services LLC
Subjectpayquiz.xyz
Fingerprint82:12:11:9B:0D:EF:CA:9B:64:30:9A:3A:18:50:44:39:01:28:A4:46
ValidityWed, 20 Mar 2024 12:10:07 GMT - Tue, 18 Jun 2024 12:10:06 GMT
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Hash 201e8d4ea8aee41c203c084f7d1c4e33
8613f3c329fce3f9211731e06ee6da330a11359e
75616a42ff4f96e6e7f3b1d3a74881d9148a46a276377bebab3a98b96c1cdb35
GET /favicon.ico HTTP/1.1
Host: m.payquiz.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m.payquiz.xyz/signin.php
Cookie: loclang=en; userInfo=%7B%22id%22%3A%221%22%2C%22name%22%3A%22test11%22%2C%22email%22%3A%22%22%2C%22head%22%3A%22./img/head.png%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 17:17:50 GMT
content-type: image/x-icon
last-modified: Sun, 24 Apr 2022 01:42:36 GMT
etag: W/"6264ab0c-10be"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cJHkTv7r0giHVnuvDd2J6UlpmfV7VDh%2F7GhFkIYSXKa%2FW%2FjWUKYHWQWccOyss8shTg5XwguvKAwuMnsnE1OtqFOkyqdE1IM9VUb2QL6gOquvhzyUbj7%2BbZNAOruZ%2BEbl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a83a86798856cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400